The Vesta Control Panel SSL certificates is contained in the following 2 files

/usr/local/vesta/ssl/certificate.key and

/usr/local/vesta/ssl/certificate.crt

One easy way to generate SSL certs for Vesta, is to goto https://www.digicert.com/easy-csr/openssl.htm and fill in the blanks, after which it will generate the necessary openssl command to run to generate the CSR as well as the key file

Once you send this CSR to digicert and complete the validation process, you can then download the pem file from digicert

Now replace the .key file with that generated by openssl and the crt file with the contents from the downloaded PEM file

However should you bring this to the next level and use it for your “enterprise” web hosting, there are a few things you need to do

You might be tempted to setup Vesta in the following way, where all the webhosts will sync to NS01 and then have NS01 sync the dns config over to NS02.

Unfortunately Vesta does not allow you to do this, BUT it does allow the setup as shown below, where each of the web servers will send the dns updates to each of the named servers.

Setting up the NameServers (NS01, NS02)

Now given that Vesta will install and setup different components depending on the amount of ram of the machine, for NS01 and NS02, it would be wise to go with 512MB ram so that it will install the bare minimum.

Once you have installed Vesta on the servers, its time for some clean up